36911dc13b50d2afd19f838b0b69924ae2ced08f96bffbbfbdad54d5e46fe85e

Sharing

Copy URL Twitter E-mail

General

Target

36911dc13b50d2afd19f838b0b69924ae2ced08f96bffbbfbdad54d5e46fe85e
Size

484KB
MD5

289101eb0928201ca3879bd97208e3f2
SHA1

eb5e55be9ff37407977cd44a2c43f9f9cb9cbfd3
SHA256

36911dc13b50d2afd19f838b0b69924ae2ced08f96bffbbfbdad54d5e46fe85e
SHA512

e261cf4ceffd0bb94bf95c60f25a5aa6cc2f0398f6e78a68e670a838fa0741bb9a06824af9879984c3f52fad3c5010289e429762743b99da930a35a2045bea1d
SSDEEP

12288:Iv9FeSXXj7WZcnjDuUaaCfwxSIasKqfocc7ZRaryjQ0Bg:IFDSYpapfLIasKs03E

Score

N/A

Malware Config

Signatures

Files

36911dc13b50d2afd19f838b0b69924ae2ced08f96bffbbfbdad54d5e46fe85e
.exe windows x86

592f2c9021234816314b520a267125f8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
SetConsoleCP
RaiseException
GetUserDefaultLCID
GlobalReAlloc
GetSystemTimeAsFileTime
LockResource
VirtualFree
ReadFile
GetCPInfo
HeapDestroy
HeapValidate
WriteProfileSectionW
InterlockedExchange
GetLastError
GetModuleHandleW
lstrlenA
GetPrivateProfileStructA
LoadLibraryW
ExitProcess
CreateMutexA
Sleep
VirtualAlloc
WriteConsoleW
GetStringTypeA
InterlockedIncrement
IsValidLocale
GetOEMCP
GetCommandLineA
SetUnhandledExceptionFilter
DebugBreak
HeapFree
GetStartupInfoW
GetConsoleMode
WriteConsoleA
GetStdHandle
OpenMutexA
WriteFile
CreateDirectoryA
IsDebuggerPresent
SetFilePointer
FreeLibrary
GetEnvironmentStringsW
IsBadReadPtr
RtlUnwind
GetModuleFileNameA
GetConsoleCP
DeleteCriticalSection
CloseHandle
GetACP
TlsSetValue
GlobalUnfix
GetProcessHeaps
LCMapStringA
GlobalAddAtomA
GetConsoleOutputCP
TerminateProcess
MultiByteToWideChar
HeapAlloc
IsValidCodePage
GetFileType
CompareStringW
GetProcAddress
VirtualQuery
QueryPerformanceCounter
GetStartupInfoA
FindFirstFileExW
InitializeCriticalSectionAndSpinCount
GetTimeZoneInformation
SetConsoleCtrlHandler
EnumSystemLocalesA
GetCurrentThreadId
GetProcAddress
GetModuleFileNameW
GetCommandLineW
SetLastError
GetTimeFormatA
TlsAlloc
HeapSize
GetCurrentProcessId
GetLocaleInfoA
OutputDebugStringA
OutputDebugStringW
CompareStringA
TlsGetValue
GetLocaleInfoW
WideCharToMultiByte
SetHandleCount
LCMapStringW
EnterCriticalSection
HeapReAlloc
LeaveCriticalSection
CreateFileA
FlushFileBuffers
SetConsoleMode
InterlockedDecrement
GetTickCount
TlsFree
GetDateFormatA
SetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsW
SetEnvironmentVariableA
GetCurrentProcess
GetCurrentThread
LoadLibraryA
MoveFileA
GetStringTypeW
HeapCreate
GetProcessHeap

shell32

SHGetDesktopFolder
SheSetCurDrive
SHGetSpecialFolderLocation
SHGetPathFromIDListW
SHGetFileInfoW

user32

RegisterClassA
WindowFromDC
OemToCharBuffW
GetPropA
WINNLSGetIMEHotkey
DdeFreeStringHandle
wvsprintfW
ShowScrollBar
SetWindowRgn
SetCursor
GetProcessWindowStation
MoveWindow
OpenIcon
CallNextHookEx
WindowFromPoint
ChildWindowFromPointEx
GetWindowModuleFileNameA
TranslateMessage
DdeAccessData
GetMenuItemID
RegisterClassExA
BroadcastSystemMessageA
CreateIcon
DdeCmpStringHandles
GetDlgItem
DdeQueryNextServer

gdi32

GdiPlayJournal
GetDIBColorTable
FrameRgn
GetEnhMetaFileDescriptionA
ExtTextOutA
EnableEUDC
DescribePixelFormat
FlattenPath
CreateEllipticRgn

comdlg32

GetOpenFileNameW
GetSaveFileNameW
ChooseColorW

comctl32

ImageList_GetFlags
ImageList_Destroy
ImageList_EndDrag
ImageList_SetBkColor
ImageList_Merge
DrawStatusTextA
DrawStatusTextW
ImageList_AddIcon
ImageList_SetOverlayImage
CreateStatusWindowW
CreateMappedBitmap
ImageList_SetIconSize
CreateToolbarEx
ImageList_Draw
CreateUpDownControl
ImageList_Replace
ImageList_Create
InitMUILanguage
ImageList_SetDragCursorImage
InitCommonControlsEx
ImageList_SetImageCount

Sections

.text
Size: 264KB - Virtual size: 262KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 104KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 96KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

592f2c9021234816314b520a267125f8

Headers

File Characteristics

Imports

kernel32

shell32

user32

gdi32

comdlg32

comctl32

Sections

.text Size: 264KB - Virtual size: 262KB

.rdata Size: 104KB - Virtual size: 102KB

.data Size: 96KB - Virtual size: 116KB

.rsrc Size: 16KB - Virtual size: 14KB

.text
Size: 264KB - Virtual size: 262KB

.rdata
Size: 104KB - Virtual size: 102KB

.data
Size: 96KB - Virtual size: 116KB

.rsrc
Size: 16KB - Virtual size: 14KB